Bug #1730: Postinst suricata package script hangs on hosts without direct internet connectivity - can not download rules - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #1730

closed

Postinst suricata package script hangs on hosts without direct internet connectivity - can not download rules

Added by Pavel Selivanov over 8 years ago. Updated over 8 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Peter Manev

Target version:

Packaging/PPA

Affected Versions:

Effort:

Difficulty:

Label:

Description

Problem exist for packages from ubuntu stable ppa: https://launchpad.net/~oisf/+archive/ubuntu/suricata-stable

Now postinst script contains this:

/usr/bin/wget -qO - https://rules.emergingthreats.net/open/suricata/emerging.rules.tar.gz | tar -x -z -C "/etc/suricata/" -f -

If you try to install suricata on some host without direct connectivity to internet, installation hangs for a long time. This is normal case: this host can get updates via some proxy, or with some external downloader. For example, PCI DSS requires IDS for hosts in DB environment, and prohibits direct internet access for that hosts.

I suggest to change this lines to

# Quick check availability and then try to download rules
/usr/bin/wget --timeout=10 -qO - https://rules.emergingthreats.net/open/suricata/ > /dev/null && \
/usr/bin/wget -qO - https://rules.emergingthreats.net/open/suricata/emerging.rules.tar.gz | tar -x -z -C "/etc/suricata/" -f -

Now I have to fix this by adding to /etc/hosts line

0.0.0.0 rules.emergingthreats.net

on this hosts.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #1730

Postinst suricata package script hangs on hosts without direct internet connectivity - can not download rules

Updated by Victor Julien over 8 years ago

Updated by Peter Manev over 8 years ago

Updated by Pavel Selivanov over 8 years ago

Updated by Peter Manev over 8 years ago